Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft: As of October, 1024-Bit Certs Are the New Minimum

Posted by timothy on from the always-so-very-precise dept.

way2trivial writes with this snippet from Information Week about a warning from Microsoft reminding Windows administrators that an update scheduled for October 9th will require a higher standard for digital certificates. "That warning comes as Microsoft prepares to release an automatic security update for Windows on Oct. 9, 2012, that will make longer key lengths mandatory for all digital certificates that touch Windows systems. ... Internet Explorer won't be able to access any website secured using an RSA digital certificate with a key length of less than 1,024 bits. ActiveX controls might be blocked, users might not be able to install applications, and Outlook 2010 won't be able to encrypt or digitally sign emails, or communicate with an Exchange server for SSL/TLS communications."

2 of 207 comments (clear)

  1. Re:open source by bloodhawk · · Score: 5, Insightful

    just because it is closed source doesn't mean people can't read the source. thousands of universities and government agencies and even other organisations have access to the source code for windows for development purposes, security evaluation purposes and research purposes.

  2. Re:Why 1024? by smash · · Score: 5, Insightful

    Because NSA / CIA haven't cracked 2048 bit yet, silly.

    --
    I run: Windows, OS X, Linux, FreeBSD. Just because you have a hammer, doesn't mean everything is a nail.